Vulnerabilities > Nutspace > NUT Mobile

DATE CVE VULNERABILITY TITLE RISK
2018-07-13 CVE-2016-6549 Improper Authentication vulnerability in Nutspace NUT Mobile
The Zizai Tech Nut device allows unauthenticated Bluetooth pairing, which enables unauthenticated connected applications to write data to the device name attribute.
low complexity
nutspace CWE-287
3.3
3.3
2018-07-13 CVE-2016-6548 Information Exposure vulnerability in Nutspace NUT Mobile
The Zizai Tech Nut mobile app makes requests via HTTP instead of HTTPS.
network
low complexity
nutspace CWE-200
5.0
5.0
2018-07-13 CVE-2016-6547 Information Exposure vulnerability in Nutspace NUT Mobile
The Zizai Tech Nut mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file.
local
low complexity
nutspace CWE-200
2.1
2.1